Enabling an external operating system to access encrypted data units of a data storage system

ABSTRACT

The present invention is notably directed to a method for allowing an operating system, or OS, to access an encrypted data storage system of a computer ( 10 ), wherein: the data storage system ( 11 ) comprises: a partition ( 122 ); and first encrypted data units ( 120 ) that comprise partition table data of said data storage system; and said computer ( 10 ) is connectable to an external device ( 20 ) comprising: a boot loader ( 24 ) for an external OS ( 112 ) that is not installed on the computer; and partitioning information ( 22 ) capturing an expected location of said partition ( 122 ) in the data storage system; and wherein second encrypted data units ( 220 ) that comprise reference partition table data for said data storage system are available from said computer ( 10 ) or said external device, the method comprising: upon connection (S 21 ) of said external device ( 20 ) to the computer, instructing to boot (S 23 ) the computer ( 10 ) from said boot loader ( 24 ); and during or after booting of the computer: comparing (S 25 ) the first ( 120 ) and second encrypted data units ( 220 ); and if (S 27 ) the first and second encrypted data units match, allow (S 28 ) the external OS ( 112 ) to access, based on the partitioning information ( 22 ) stored on the external device, one or more data units ( 14 ) of said partition on the data storage system ( 11 ). The present invention is further directed to related devices, systems and computer program products.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is based on and claims the benefit of priority fromcommonly-owned United Kingdom Patent Application 1407187.2, filed onApr. 24, 2014.

FIELD OF THE INVENTION

The invention relates in general to the field of methods for securelybooting computers, and in particular to methods for allowing an externaloperating system to access a partition on a data storage system of acomputer.

BACKGROUND OF THE INVENTION

Technologies are needed to allow software to be executed on anynon-previously prepared or reviewed computer (e.g., an employee'sprivate PCs) while ensuring that its execution is secure, e.g., assecure as on a corporate/company PC. Such a technology would enable atrusted bring your own (BYO) computing work environment. BYO generallyrelates to “Bring your own device” (BYOD), “bring your own technology”(BYOT), or closely related, “bring your own behavior” (BYOB). BYOD orBYOT concerns corporate/business policy of how employees can bring anduse personal mobile devices at work and access employers' email,databases and files, while otherwise using such devices at home, wherebypersonal applications/data are accessed through the same devices. Beyondhardware, BYOB extends this to software used on the device.

Besides, it is well-known that any software executed on a computer(e.g., a PC) may be attacked by viruses and malicious software (malware)that may be present on the computer's operating system. One solution forthis problem is to restart the PC from an external boot media, e.g.,stored on a user-trusted device, typically a secure device, and start anew and—from a security perspective—clean operating system (OS) from theexternal media. An example of such a user-trusted device is theso-called Zone Trusted Information Channel (or ZTIC for short).

In a bring-your-own (BYO) scenario, one may want to start an operatingsystem, or OS, on a computer that has already been prepared with another(e.g., native) OS and whose hard drive is fully encrypted. One solutionis to rely entirely on an external memory stick where the BYO OS's dataare stored to start the computer from this external device without usingthe local hard drive. A downside of this solution is that it requires afast memory stick for the booted OS to be usably fast. Another issue isthat if the swap space is located on the external drive, the memorystick may fail quickly (as most memory sticks allow limited block writeoperations).

BRIEF SUMMARY OF THE INVENTION

According to a first aspect, the present invention is embodied as amethod for allowing an operating system, or OS, to access an encrypteddata storage system of a computer, wherein:

-   the encrypted data storage system comprises:    -   a partition; and    -   first encrypted data units that comprise partition table data of        said data storage system, and-   said computer is connectable to an external device comprising:    -   a boot loader for an external OS that is not installed on the        computer; and    -   partitioning information capturing an expected location of said        partition in the data storage system, and-   second encrypted data units that comprise reference partition table    data for said data storage system are available from said computer    or said external device,-   the method comprising:-   upon connection of said external device to the computer, instructing    to boot the computer from said boot loader; and-   during or after booting of the computer:    -   comparing the first and second encrypted data units; and    -   if the first and second encrypted data units match, allow the        external OS to access, based on the partitioning information        stored on the external device, one or more data units of said        partition on the data storage system.

In embodiments, the method further comprises, prior to instructing toboot the computer from said boot loader: when an encryption key and adecryption key for writing to and reading from said data storage system,respectively, are available, setting up said partition of the datastorage system, using said encryption key and said decryption key; andstoring, on said external device, said partitioning informationcapturing the location of said partition in the data storage system,wherein said partitioning information preferably comprises an identifierof a first block and/or an identifier of a last block of this partition.

Preferably, the method further comprises, prior to instructing to bootthe computer from said boot loader: reading, from the data storagesystem, said first encrypted data units and storing the second encrypteddata, which preferably are a copy of said first encrypted data units,wherein, preferably, reading said first encrypted data units comprisesreading raw encrypted data units via an OS installed on the computer,for example a native OS, and more preferably via an applicationprogramming interface, or API, of this OS installed on the computer.

In preferred embodiments, reading said first encrypted data units isperformed after connecting said external device to the computer andafter instructing to boot the computer from said boot loader, accordingto a function provided by said external device, preferably by the bootloader itself or the external OS itself.

In embodiments, at the step of comparing, the second encrypted datareside on said external device or on another external device connectableto the computer.

In variants, at the step of comparing, the second encrypted data resideon the data storage system, preferably inside said partition.

In preferred embodiments, the method further comprises: if the first andsecond encrypted data units do not match, then: instructing the computerto boot independently from said external OS to make available adecryption key for reading from said data storage system; and analyzingthe data storage system, wherein analyzing comprises decrypting thepartition table using this decryption key.

For instance, the method further comprises, upon analyzing the datastorage system: if contents of the first encrypted data units havechanged, updating said second encrypted data units to make themavailable from said computer or from said external device, preferably bystoring said second encrypted data units on one of: said externaldevice; or on the data storage system and more preferably inside saidpartition of the data storage system.

Preferably, the method further comprises, upon analyzing the datastorage system: if a location of said partition has changed, storing, onsaid external device, updated partitioning information capturing thechanged location of said partition in the data storage system.

In embodiments, the method further comprises, upon analyzing the datastorage system: if the partition was deleted, setting up a new partitionof the data storage system.

Preferably, said external device is a user trusted device, comprising; aconnection interface enabling connection with a computer; and apersistent memory, the latter storing: said boot loader for saidexternal OS; said partitioning information; and, preferably, said secondencrypted data units; and, more preferably, software modules, whichcomprise one or more of the following: application components; operatingsystem image components for said external OS; and, more preferably,hardware component drivers for said external OS.

According to another aspect, the invention is embodied as a computerizedsystem, comprising:

-   a computer, with a data storage system that comprises:    -   a partition; and    -   first encrypted data units that comprise partition table data of        said data storage system, and-   an external device, to which said computer is connectable, said    external device comprising:    -   a boot loader for an external OS; and    -   partitioning information capturing an expected location of said        partition in the data storage system,-   and wherein,-   the computerized system further comprises second encrypted data    units that comprise reference partition table data for said data    storage system, where said second encrypted data units are available    from said data storage system or said external device.

Preferably, the computerized system further comprises computerizedmethods that preferably are stored on the external device, and which aredesigned to implement all the steps of methods as mentioned above.

According to another aspect, the invention is embodied as a user trusteddevice, comprising:

-   a boot loader configured for allowing to boot a computer therefrom;-   partitioning information capturing an expected location of a    partition of a the data storage system of said computer; and-   preferably, second encrypted data units that comprise reference    partition table data for said data storage system, wherein said    second encrypted data match first encrypted data units stored on    said data storage system.

According to a final aspect, the invention is embodied as a computerprogram product for allowing an operating system, or OS, to accessencrypted data units of a data storage system of a computerized system,the computer program product comprising a computer-readable storagemedium having computer-readable program code embodied therewith, thecomputer-readable program code configured to implement a methodaccording to one or more of the above embodiments.

Devices, systems, methods and computer program products embodying thepresent invention will now be described, by way of non-limitingexamples, and in reference to the accompanying drawings.

BRIEF DESCRIPTION OF SEVERAL VIEWS OF THE DRAWINGS

FIG. 1 schematically represents a general purpose computerized systemaccording to embodiments of the invention; this system is specificallydesigned for implementing method steps involved in embodiments of theinvention;

FIG. 2 schematically represents a user trusted device, according toembodiments of the invention; this device is specifically designed forimplementing method steps involved in embodiments of the invention;

FIG. 3 is a flowchart illustrating high-level steps of a method forallowing an operating system to access encrypted data units of a datastorage system of a computer as depicted in FIG. 1, according toembodiments. FIGS. 3A and 3B respectively emphasize phases S20 and S10of FIG. 3 and further show relations between method steps andcorresponding data;

FIG. 4 is a variant to FIG. 3, which can advantageously be used when thenative operating system installed on the host computer does not supportfunctions to read raw contents of the encrypted storage system.Similarly, FIGS. 4A and 4B respectively emphasize specific phases ofFIG. 4; and

FIGS. 5A and 5B schematically illustrates partitions of a data storagesystem, as well as partitioning information therein and partition tabledata, as used in embodiments. In FIG. 5A, the partitions' data aresymbolically depicted as being available, while FIG. 5B depicts the samepartitions when encrypted.

DETAILED DESCRIPTION OF THE INVENTION

The following description is structured as follows. First, generalembodiments and high-level variants are described (sect. 1). The nextsection addresses more specific embodiments and technical implementationdetails (sect. 2).

1. General Embodiments and High-Level Variants

In reference to FIGS. 1-5, an aspect of the invention is firstdescribed, which concerns a method for allowing an operating system(hereafter “OS”, for short) to access an encrypted data storage system.

The context assumed is the following: a computer (or a computerizedsystem) 10 is provided, which comprises a data storage system 11, thelatter being typically a hard disk drive (HDD) or a solid state device(SDD) memory, e.g., flash memory. Some of the embodiments discussedbelow assume a hard disk, without prejudice. More generally yet, thedata storage system 11 can be any storage system that supportspartitioning.

The computer 10 may typically comprise a native OS 111 already installedor a host OS. Still, embodiments of the present invention can inprinciple also be implemented even if no native OS is installed or nosuitable OS is available on the computer 10, as discussed later.

The data storage system 11 comprises notably one partition 122 ofinterest, it being noted that said partition 122 is typically a secondpartition, as a prior partition 121 may already exist, as depicted inFIG. 1 or 5.

The data storage system 11 further comprises first encrypted data units120, which units comprise partition table data of the storage system 11.

The computer 10 is furthermore connectable to an external device 20,which typically is a user trusted (secure) device, as depicted in FIGS.1 and 2.

The external device 20 notably comprises a boot loader 24 for anexternal OS 112 that is not installed on the computer 10 yet. Or atleast, this OS 112 is not completely installed (some components mayalready reside on the storage 11). What is called boot loader here istypically a set of software modules (also later referred to as“components” or “parts”) that can perform various operations, uponexecution at the computer 10, possibly interactively with othercomponents executing at the device 20, to boot the computer 10.Typically, the boot loader (or at least a part thereof) is detectable bythe initialization firmware, e.g., the BIOS. It notably comprisesinstructions for this firmware to initiate a transfer of at least someof its components onto the computer 10 for subsequent execution.

The device 20 further comprises partitioning information 22, i.e.,information that captures an expected location of the partition 122 ofinterest in the storage system 11, see FIG. 5.

Finally, second encrypted data units 220 are available from the computer10 or the external device 20. These which units too comprise referencepartition table data for the data storage system. They typically are acopy of the units 120 (or a part thereof). Such reference data will beused for a comparison, as explained later.

Inherently, the novel methods disclosed herein comprise the followingfundamental steps, which are otherwise illustrated in FIGS. 3 and 4:

-   -   First, upon connection (step S21) of the external device 20 to        the computer 10, computerized methods of the device 20 suitably        interact with the computer 10 to give instruction to boot (step        S23) the computer 10 from the boot loader 24. The latter is        initially stored on the external device 20 and shall preferably        execute on the device 20 and/or on the computer 10. It may        execute partly on the device, partly on the computer 10. Modules        thereof may concomitantly (and possibly concurrently) execute on        both the computer 10 and the external device 20.    -   Second, a comparison shall be performed during or after booting        of the computer. Namely:        -   a. The first 120 and second encrypted data units 220 are            compared, step S25; and then        -   b. If S27 the first and second encrypted data units match            (as per the above comparison), the external OS 112 is            allowed S28 to access data units 14 of the partition 122,            e.g., data units that span the partition 122. The access by            the OS 112 shall be based on the partitioning information 22            that is stored on the external device 20.

Strictly speaking, the external OS may then access one or more dataunits 14 of the partition 122. Basically, accessing blocks 14 meansreading blocks, writing blocks onto the partition 122. Note that theexternal OS may have its own encryption/decryption module usingrespective encryption/decryption keys, just like the native OS (thoughthe keys normally differ). However in the absence of such anencryption/decryption module, the external OS 112 shall store data inclear and then be able to read these data in clear.

The second encrypted data units 220 of the partition 122 are needed toperform the comparison S25, which allows to conclude as to whether thepartition 122 can be safely accessed. Relying on the sole partitioninginformation 22 to access the partition's data would be unsafe as thepartitioning information 22 alone does not allow to identify whether thepartition 122 has been changed, deleted or otherwise reused. The firstand second data units 120, 220 are encrypted data, thereby enabling acomparison while not exposing the storage system 11. The secondencrypted data units 220 may for instance simply consist of a copy ofthe first encrypted data units 120, i.e., it can be a copy of the rawencrypted partition table (or part thereof), as stored on the disk 11.Comparing the units 120 and 220 allows to identify whether the partitionscheme/layout has changed since the partition was set up, step S13.

To perform the comparison S25, the second encrypted data 220 shallpreferably be stored on the external device 20 or on another externaldevice 20 a (also connectable to the computer 10). Indeed, the “externaldevice” as meant above may in fact consist of several, physicallydistinct devices 20, 20 a, as illustrated in FIG. 1. In that case, eachdevice may for instance comprise different components, e.g., one devicemay comprise the boot loader 24, while another device comprisespartitioning information, etc. The second encrypted data units 220,i.e., the reference partition table data, can thus be stored on one ofthe external devices. Still, one preferably uses one and a same externaldevice 20 for storing both the partitioning information 22 and thesecond encrypted data 220, provided the device 20 has enough memory,again for security reasons, e.g., data integrity and also expediency andpracticality.

In variants, the second encrypted data 220 may have been stored on thedata storage system 11, e.g., inside the partition 122, in order toavoid inadvertent interferences between the native OS 111 and theexternal OS 112, as the normal operation of the computer 10 typicallyuses another partition 121. Such variants are notably preferred when theexternal device 20 has not enough memory. They are also preferred when asame external device is used in respect of multiple computers 10 andwhen one does not want to maintain partition tables for each of thesecomputers on the external devices. This accordingly simplifies thepartition management.

In still other variants, said second data units 220 may be availablefrom a server 30, via the computer 10, appropriately connected to theserver, see FIG. 1, which still allows the external device to performthe required comparison.

Therefore, the comparison S25 may be performed using second encryptedunits 220 that are stored on the external device 20 or that resides onthe computer 10 or are available therefrom.

In all cases, the above schemes allow for an external OS to securelyaccess and retrieve data on the partition 122, especially in the absenceof the decryption key that was used for encrypting the storage system11. This makes the above method particularly helpful for BYO scenarios.

The partition table data 120, 220 are data pertaining to a partitiontable of the data storage system 11 and can be any partitiontable-related data that enables a meaningful comparison, the point beingto be able to identify whether the partition 122 was compromised orotherwise changed. Thus, it does not necessarily need to be the entirepartition table, e.g., it can be one or more chosen data chunks of thepartition table or, even, a hash value of the table, or a chosen partthereof. Thus, at step S25: at least parts of the partition table dataand the reference table data (as stored e.g., on the external device)need be compared.

The subsequent steps S27, S28 (for allowing the external OS 112 toaccess the partition's data units 14) can involve various differentoperations. For instance:

-   -   If the external OS is started from the external device 20, then        access is allowed during or, more likely, after booting S23,        notwithstanding the order of steps depicted in the flowchart of        FIG. 3 or 4. The external OS 112 may for instance access the        partition's data units 14 after having been started. As evoked        earlier, accessing the blocks 14 basically means reading/writing        blocks onto the partition 122. The external OS 112 may notably        use these data units to store data caches, swap files, or other        data;    -   Once said partition 122 has been created and the external OS has        been booted once, the external OS may store components thereof        on said partition 122 as well. Once these components have been        stored on partition 122, the boot loader 24 of the external        device 20 may verify the existence of the partition 122 and        accesses the partition's data units 14 to start the external OS.        Although parts of the external OS are now stored on partition        122, the OS 112 it is still an external OS inasmuch as it cannot        be booted natively on the computer without the external device        20.

In the following, details of the phases S10, S20 and S30 (whichrespectively correspond to initialization, enabling and recovery phases)are discussed in reference to FIGS. 3 and 4. More precisely: FIG. 3corresponds to a preferred embodiment, while FIG. 4 is a variant that ispreferred when no native operating system or no suitable nativeoperating system is installed on the host computer. FIGS. 3A-B (andsimilarly FIG. 4A-B) respectively emphasize phases S20 and S10, andfurther show relationships between sub-steps and corresponding data,where applicable.

Referring first to FIGS. 3 (in particular 3B) and 4 (4B), the presentmethods may further comprise, prior to instructing to boot S23 thecomputer 10 from said boot loader 24, initialization steps aiming atsetting up the partition 122 and securing the partition information 22.

More in detail, the partition 122 of the data storage system 11 is setup S13 (using encryption/decryption keys) when saidencryption/decryption keys EK, DK (FIG. 1) are available. The encryptionkey EK is needed for writing to the data storage system, while thedecryption key DK is needed for reading from said data storage system.Typically, the partition 122 is set up while booting the computerdevice's native or host OS 121, as illustrated in FIG. 3 or 4, step S11,as the encryption key EK and decryption key DK are then available. Theencryption key EK and decryption key DK are typically the same.

Next, the partitioning information 22 is stored S15 on the externaldevice 20. The partitioning information 22 captures location informationabout said partition in the data storage system. This information mustbe available in clear (or at least must be decryptable) and therefore itmust be first read when the keys EK, DK are available. This information22 is stored on the device 20, immediately after reading or later. Itcan of course reside encrypted on the device 20, thanks to encryptionmeans available at the device.

When setting up the partition 122, step S13, the OS 111 is aware of thepartitioning information 22, such that this information 22 can becaptured and subsequently be stored on the external device 20. To thataim, one may store, on the external device 20, a software componentdesigned to instruct the native OS 111 (e.g., via an API) to at leastpartly automate the set up of the partition 122, e.g., in order tominimize user inputs. The partitioning information captures the locationof the partition 122 in the storage device or its arrangement thereon ifthe partition is scattered on the storage device. It may consist of,e.g., start and/or end blocks for a hard disk or a solid-state storagememory, or identifiers of said blocks (e.g., B1, . . . Bf in FIG. 5). Asillustrated in FIG. 5, the partitioning information 22 preferablycomprises an identifier B1 of a first block and/or an identifier Bf of alast block of this partition 122. Such block identifiers adequatelypermit to deduce or infer the location of the partition 122 on thestorage system 11. Even, only the first B1 or the last block identifierBf may be needed if the partition size is predetermined. In variants,the entire partition table may be read in clear (as this is normallyenabled by the native OS, which was booted at step S11), i.e., anunencrypted version of the first data units 120 may be stored on thedevice 20 as partitioning information 22, in order to capture relevantelements of the partitioning information that are later needed for theexternal OS 112 to access the partition 122.

As evoked earlier, there might be several partitions 121, 122 present onthe computer's storage system 11 at this stage. Theoretically, one mayreuse an already existing partition to set up the new partition 122. Butmore likely, one will create an entirely new partition 122, because oneneeds to store data therein and data already stored on a previouspartition will be deleted when re-using that partition.

The present methods naturally extend to the creation and subsequent useof multiple such partitions, i.e., such as the partition 122.

Setting up the partition implies storing data pertaining to the externalOS 112 (e.g., external OS data, typically user- or private data or,even, cache data, or still the entire external OS), which is not anative or a default OS already installed on the PC. Note that theexternal OS 112 evoked herein differs from what is usually called aguest OS. That is, the external OS as meant here does not imply or referto virtualization technologies. Now, embodiments could neverthelessinvolve a guest OS in some particular cases. In particular, presentembodiment do not preclude a guest OS running as part of the externalOS. Also, a guest OS may be somehow available to run as part of thenative OS. Yet, such a guest OS is irrelevant to the present inventioninasmuch as this is the native OS which holds keys EK, DK. Thus, theexternal OS 112 as meant here should not be confused with a guest OS(i.e., an OS running on a virtual machine) meant to run as part of thenative OS, it being noted that such a guest OS would anyway not be“external” to the native OS, but on the contrary hosted by the nativeOS. Also, OSs 111 and 112 are mutually exclusive inasmuch as theexecution of the external OS is, by design, not concomitant with (i.e.,excludes a concomitant execution of) the native OS.

In embodiments, the initialization phase S10 further comprises readingS17 the first encrypted data units 120 (on the data storage system 11)and subsequently storing S18 the encrypted data units 220, prior toinstructing to boot S23 the computer 10 from said boot loader 24. Hence,reference data 220 are available at the device 20 for a subsequentcomparison. Note that the first encrypted data units 120, as they resideon the encrypted storage system 11, are only available in encrypted formto the boot loader 24 and the external OS 112.

As said earlier, the second units 220 preferably are a copy of the firstencrypted units 120, for the sake of simplifying the comparison S25. Inthat respect, the step S17 shall typically involve reading S17 the rawencrypted data units via an OS already installed on the computer 10,e.g., the native OS 111. This can typically be achieved via anapplication programming interface (or API) of this OS. In such a case,the step of reading S17 can typically be performed just after setting upS13 the partition and storing S15 the partitioning information 22 on theexternal device, as assumed in FIG. 3 and FIG. 3B. Variants arediscussed below in reference to FIG. 4. By raw contents, it is meantencrypted blocks in their encrypted representation.

More generally, the second encrypted data units 220 may comprise part orall of the first encrypted data units 120, or still be a hash valuethereof part or all of the first encrypted data units 120. This may besufficient, as long as one is able to make a meaningful comparison andconclude with confidence that the partition 122 was not compromised orotherwise changed since it was set up. Thus, in some embodiments, onemay not need to consider the whole partition table. Rather, storing onedata chunks of the partition table or a hash value thereof may suffice.

Next referring to FIG. 4, variants are now discussed, which allow tocope with situations where the native OS does not provide any suitablefunction for reading S17 raw contents of the first encrypted data units120, i.e., in their encrypted representation. In such cases, the step ofreading S17 can still be performed, but this time after shutting downS19 the computer and booting it S19 a from the external device, as shownin FIG. 4 (FIG. 4B). More precisely, reading S17 the first encrypteddata units is now performed after connecting S12 the external device 20to the computer 10, shutting down S19 the computer, and instructing itto boot S19 a from the boot loader 24. The function that enables readingS17 is now provided by the external device 20, e.g., via or by the bootloader 24 or the external OS itself.

Note, however, that it is still possible to implement aspects of theinvention even when no native OS is installed on the computer 10 (notdepicted in the appended figures). In such a case, different schemesneed be contemplated for setting up the partition and reading rawcontents (with respect to the schemes of FIGS. 3-4). Still, the externaldevice 20 can still be used to boot S23 a suitable prepared computer,perform the comparison S25 and possibly allow an external OS to accessS28 the encrypted storage system 11.

At present, details of the recovery phase S30 are discussed, inreference to FIGS. 3-4. The recovery phase S30 aims at diagnosing issueswith the partition 122 created earlier during the initialization S10(step S13) and take appropriate actions, which actions may in fact plugback into the initialization phase, as illustrated in FIGS. 3 and 4. Inembodiments, if the first and second encrypted data units do not match(test S27), then the computer 10 can be instructed S31 to bootindependently from the external OS 112, in order to make the decryptionkey DK available and hence allow to read data in the data storage system11. This makes it possible to subsequently analyze S32 the data storagesystem 11. The analysis S32 shall typically need to decrypt thepartition table, which requires this decryption key.

Note that the test S27 occurs at a point where the external OS 112 wasalready booted (step S23). Yet, the external OS 112 does not possess thenecessary decryption key DK. Therefore, one may shut the computer downand reboot S31 it to boot the native OS 111. The native OS 111 holds thedecryption keys DK, which makes it possible to decrypt the partitiontable and analyze the storage system, i.e., to figure out what happenedto the partition 122 created earlier.

Various diagnostics may be made and actions accordingly taken.Embodiments may include part or all of the diagnostics and actionsdescribed below.

For instance, upon analyzing S32 the data storage system 11: if S27 itturns out S34 that contents of the first encrypted data units 120 havechanged, then one would update S17, S18 the second encrypted data units220 to make them available S18, e.g., from the computer 10 or from saidexternal device 20. Consistently, this may imply storing the updatedencrypted data units 220 on the data storage system 11 (preferablyinside the partition 122) or the external device 20, as discussedearlier.

If the test S34 reveals that the location of the partition 122 haschanged, it is further needed to store S15 updated S35 partitioninginformation 22 (capturing the changed location of partition 122) on saidexternal device.

Finally, if the partition 122 was deleted or cannot be located, it ismoreover needed to set up S13 a new partition of the data storagesystem, which can for instance be achieved as described earlier, inreference to FIG. 3 or 4.

Referring to FIG. 1, and according to another aspect, the invention canalso be embodied as a computerized system 100, comprising: the computer10 with the data storage system 11, the latter comprising the partition122 and the first encrypted data units (partition table data of the datastorage system 11). This system further comprises the external device20, consistently with the schemes described above in reference to FIGS.3-4. The system 100 further comprises the second encrypted data units220, the latter being available from the data storage system 11 or theexternal device 20. The system 100 is further equipped with suitablecomputerized methods, to enable present methods. Some 217 of thesemethods can notably be stored on the external device 20, in order toimplement the steps described above in reference to FIGS. 3 and 4.

Preferably, the external device(s) 20, 20 a used in the present methodsare user trusted device(s) 20. Note that, independently from thesemethods, the present invention is also directed to such a user trusteddevice. Consistently with the core aspects of the aforementionedmethods, such a device comprises: said boot loader 24 as well as thepartitioning information 22. In addition, it preferably comprises thesecond encrypted data units 220 too, for reasons mentioned earlier.

An example of such a device 20 is depicted in FIG. 2. It typicallycomprise a connection interface 212, for enabling connection with acomputer 10 and a persistent memory 214. The latter stores the bootloader 24, the partitioning information 22, and preferably the secondencrypted data units 220. Furthermore, the memory 224 will preferablystore software modules 24 a, which, in addition and complementarily tothe core functions of the boot loader 24, may notably comprise one ormore of: application components; operating system image components forsaid external OS; and hardware component drivers for said external OS.Now, some of these components may be pre-installed on the computer 10.

In preferred scenarios, the components of the boot loader 24, 24 a areinitially stored on a user trusted device 20 such as depicted in FIG. 2.An example of suitable device is the so-called Zone Trusted InformationChannel device evoked in introduction. This way, improved guarantees areprovided as to the temporary booting of the machine 10. For example, anemployer can easily keep control of the boot loader 24 present on thedevice 20 and tight cryptographic control can otherwise be provided onthe device, independently from the computer 10, which may not beprovided by the employer but instead belong to the employee.

The device 20 is preferably a secure device, i.e., equipped with asecure memory, although this needs not necessarily be the case. Uponconnection of the user trusted device 20 to the computer 20, somecomponents of the boot loader 24 may be transferred into the main memory110 of the computer 10 (assume this is a PC, for illustration) forsubsequent execution of the transferred part. As evoked earlier, thistransfer is preferably instructed by or via the initialization firmware,e.g., the BIOS. As the boot loader is preferably only partly transferred(e.g., a component thereof is transferred to the PC), its subsequentexecution may thus be carried out partly at the PC (e.g., in interactionwith the firmware), and partly at the user trusted device 20, with bothparts executing interactively.

Note that, in variants, the boot loader components transferred to the PCmay also be executed at a graphic card or any suitable extension card ofthe computer, depending on the types of satellite processing meansavailable. A concurrent (yet interactive) execution partly at thecomputer, partly at the user device is desired when additionaloperations need be performed (e.g., verification involving the BIOS),which is possible if the device 20 is equipped with suitable processingmeans 211.

The modules 24 a too may initially be stored on the user trusted device20. In that case, said modules may be transferred from the user trusteddevice 20 to the PC 10 for subsequent storage and execution. Invariants, the modules 24 a could be stored on a remote server or evenlocally on the PC and their integrity verified using cryptographicchecksums or the like. In the former case, an additional communicationstep is required to contact the server. The core functions 24 of theboot loader (which allows to start the booting S23) are, however,preferably initially stored on the device 20. This is desired, not onlyin terms of security but also because this allows to keep the bootloader of the PC (the boot loader for the native OS) untouched, whilebeing able to use the same device with any computer that has beenprepared consistently with this device, i.e., with or without such anexternal device in mind. The device 20 is discussed in more detail inthe next section.

Finally, and according to still another aspect, the present inventioncan be embodied as a computer program product for allowing an externalOS to access data units of the encrypted data storage system 11 of thecomputer 10 (or more generally, a computerized system). This computerprogram product shall comprise a computer-readable storage medium withcomputer-readable program code embodied therewith, which code isconfigured to implement methods as described earlier. More details aregiven in the next section.

The above embodiments and aspects have been succinctly described inreference to the accompanying drawings and may accommodate a number ofvariants. Several combinations of the above features may becontemplated. Examples are given in the next section.

2. Specific Embodiments/Technical Implementation Details 2.1 Examples ofDetailed Embodiments

Preferred applications comprise applications of the present embodimentsto BYO scenarios. Thus, in the following we will refer to the externalOS 112, i.e., the OS booted from the external device 20, as the BYO OS,whereas the OS initially residing on the computer 10 is referred to asthe native OS. Furthermore, a memory stick 20 is used as a user trusteddevice 20 and a general-purpose PC is used as computer host 10. The PCis equipped with a hard drive 11.

To overcome the problems noted in the introduction, the presentapproaches allow to store data on the computer's hard disk 11independently of the file system according to which the computer's harddisk 11 is formatted and this, even if the whole hard disk 11 has beenencrypted.

In order to allow the BYO OS 112 to write onto the host's computers harddisk 11, the hard disk 11 is first prepared by creating a disk partition122 for the present purpose. A problem is that the whole disk 11 isusually encrypted, such that it is not possible, later-on, to identifywhere the partition 122 is located because the disk's contents can apriori not be decrypted. This problem can be solved using the followingmethod and systems.

1.) The native OS 111 is booted S11, the UTD connected S12 to the PC anda new partition 122 is set up S13. Because it shall later not bepossible to identify where the disk partition 122 as the whole disk 11is encrypted, partitioning information 22 is stored S15 on the UTD 20.This information comprises start and end blocks (block identifiers) andpotentially other meta-information of the partition just created or evenan entire copy of the (clear-text) partition table; it shall be used tostart the BYO (external) OS.

2.) As it can be realized, storing only minimal partitioning information(e.g., start and end blocks) may be unsafe as this does not allow toidentify whether said partition 122 has been changed, deleted or reusedfor other purposes. Without additional protection, the following kindsof interference are possible:

-   -   The PC user may delete the partition 122 and use it for storing        other data. Not detecting this would make the external OS        unaware about the user's action, and may cause to overwrite data        stored by the user;    -   And after the external OS has overwritten user's data, the user        (possibly unaware of the interference of the external OS) may        again overwrite data that have in the meantime been stored by        the external OS, etc.

To avoid such interference, raw block data representing the partitioninglayout of the hard disk can be read S17 once the partition 122 has beencreated, i.e., they are read the way the blocks are stored encrypted onthe disk 11, such that the data read reflect the first encrypted dataunits 120. The blocks read are then stored S18 on the device 20. Inabsence of appropriate function in the native OS 111 to read raw (i.e.,encrypted) contents of the disk 11, the approach of FIG. 4 is chosen.

3.) Once all necessary data are stored on the external device 20, we canshut down S19 the host OS. The initialization (or setup) phase iscompleted.

After the partition 122 has been set up for the BYO OS 112, we canreboot the computer and then start S23 the BYO OS from the externaldevice 20. The BYO OS will be started from suitably designed modules ofboot loader. While the boot loader 24 cannot decrypt blocks holding thepartitioning information 22 and hence, identify the presence ofpartition 122, it can nevertheless compare S25 the blocks 120 storingpartition table data on the hard disk 11 with the copy 220 that haspreviously been stored on the external device 20. If S27 the copiesmatch (e.g., are identical), the partition was not changed. Thus, theBYO OS can be started S28 and accordingly accesses partition 122: theBYO OS can use blocks spanning said partition, thanks to thepartitioning information previously stored on the device 20 for its ownpurpose. These blocks may notably be used for maintaining a data cache,for storing a swap file, installing a copy of the BYO OS (the first timethe computer is booted). On subsequent start-ups, the PC may be bootedfrom the user trusted device 20, which starts the OS from the copystored in partition 122.

Whenever the partition 122 of the computer is changed, the abovecomparison will fail, even if the partition 122 is still present on thecomputer. Whether the partition is present, or has been removed cannotbe straightforwardly identified since the disk blocks are encrypted.However, it is possible to analyze this situation by re-booting S31 thePC's native OS, from which one can read the partitioning information 22,for further analysis S32. Once the PC has been booted S31, one canverify the presence of partition 122.

-   -   If partition 122 is still present and was not moved, one may        create a copy of the first data blocks in their encrypted        representation (capturing the partition table 120) and store        this copy on the external device 20 as updated second data        blocks 220.    -   If partition 122 is still present but was moved, one may also        copy the first data blocks in their encrypted representation and        store it on the external device 20 as (an updated version of        the) second data blocks 220 as well as store the new        partitioning information 22 on the external device 20 such that        during subsequent uses of the external OS the new location of        partition 122 is being used.    -   If S34 the partition is no longer present, the partition can be        created S13 anew.

After this analysis phase (which potentially recreates partition 122),one can again start the BYO OS. If the native OS does not provide anysuitable function to read the raw contents of the disk blocks (i.e. theencrypted blocks), the above mechanism has to be changed slightly, cf.FIG. 4. At present, instead of directly copying S17-18 the contents ofthe blocks 120, in a first step we only store the block identifiers(partitioning information 22) on the external device 20, step S15. Oncethis is done, the PC is shut down S19 and booted S19 a from the externaldevice 20 without changing the partitioning information 22 in-between.Once we have booted from the external device, the contents 120 of saidblocks are copied S17 and stored S18 onto the external device 20.

Another danger comes from accidental usage of the partition 122 forother data. This is the case if somebody identifies the partition 122and decides to use said partition, unchanged for another purpose. Notethat, in this case, the user purposely decides to delete the data onthis partition. Yet, one may want to identify such a situation if westart the computer again through the external device 20, to avoid thesame type of interference already described above.

The following can for instance be used. In order to partition hard disksfor PCs, two prevalent partitioning schemes are: the MicrosoftPartitioning Scheme (MPT) used by MSDOS and older versions of Windowsand the GUID Partitioning Scheme (GPT), which is based on GloballyUnique Identifiers (GUIDs) as specified as part of the UEFIspecification.

In case of MPT, each partition stores the type of data stored on thepartition. This field may have one of 127 different values. If thepurpose of the partition changes, it is extremely likely that this typechanges and hence such a change would be reflected in a change of thedata units representing the disks partitioning scheme 120, which we canidentify as described above.

Still, owing to the aforementioned 127 different values, there is asmall chance that the same type might be reused for a different purpose,for instance, if a non-standard OS is installed on the computer. In thiscase, the protection mechanism can be combined with additionalprotection mechanisms such as:

-   -   Storing a magic field inside the partition 122, for instance as        part of the partition's first block    -   Hashing certain blocks within the partition 122, or    -   Using a combination of the above protection mechanisms.

Whenever the BYO operating system is started, these identificationpoints are compared in addition to comparing the partition table data byrecomputing the identification marks and comparing whether they matchidentification marks stored on the external device 20.

In case of GPT, each partition contains a GUID as the type, as well as aGUID as an identifier of the partition. When the partition is formatteda new GUID is written to the identifier field, therefore changing firstdata blocks. Due to the fact that GUIDs are globally unique, no furtherprotection is necessary.

For other partitioning schemes, the same or similar considerations asfor MPT or GPT apply.

2.2 User Trusted Device

Referring now more particularly to FIG. 2, possible embodiments of theuser trusted device 20 are now discussed in detail.

The external device is preferably a user trusted device 20. Also varioustypes of trusted devices can be contemplated for implementing presentmethods, the user trusted device 20 should be reasonably “mobile” toallow for an easy and practical connection with the computer 10. It istypically a corporate or personal secure device, that is, a device thata company or a user owns and controls, such as a USB device, preferablya USB flash drive (a data storage device that includes flash memory, inaddition to an integrated Universal Serial Bus (USB) interface), amobile phone or a personal digital assistant (PDA) that only this useruses or that is owned and controlled by the company this user works for.Typically, this device weighs less than 200 g. However, owing to therather limited requirements in terms of user interfaces, memory andprocessing capability of the device 20, this device shall preferablyweighs less than 60 g and more preferably less than 40 g.

The user trusted device 20 may be provided with processing means (and/orcomputing means, i.e., CPU) 11, such as a crypto Processor, coupled to amemory, which more generally comprises a persistent memory 214 and,possibly, a non-persistent memory too (not explicitly shown but thenon-persistent memory can be considered to be part of the processingmeans 211). Yet, a non-persistent memory and a processor are notmandatory for implementing the essential steps described earlier (theyare needed only if additional functionality is sought, such asadditional verifications involving the BIOS, as evoked earlier). In thepresent context, the persistent memory notably stores computerizedmethods 217, interacting with other components stored on the device 20,which components may be executable modules or code 24, 24 a, data 22, 24a, 220, keys 213 or still other peripheral components 218, as necessaryfor operating the device 20. In particular, said methods 217 mayinteract with the processing means 211 to trigger the boot enablingmodules 24 of the boot loader, the latter meant to be executed byprocessing means 105, 211 of the computer 10 and/or the device 20. Theboot enabling modules can also be regarded as a single module 24provided with different functions, and able to execute at the deviceand/or the computer. The boot enabling modules 24 may also be regardedas forming parts of the methods 217.

Preferably, the portion(s) of the boot enabling module(s) that reside onthe user trusted device shall occupy as little memory as possible. Forinstance, some implementations have been successfully tested which useless than 4 ko for the boot enabling modules. Additionally, the usertrusted device should provide enough storage capability for storing dataunits 220 and partitioning information 22 which may typically take up to64 ko. This excludes storage necessary to store the components of theexternal OS 112 or components that are able to retrieve such an externalOS from the network.

The connection interface 212 of the PC 10 and the device 20 may forinstance be of the following type:

-   -   Universal Serial Bus or USB;    -   External Small Computer System Interface or SCSI;    -   External Serial Advanced Technology Attachment or SATA;    -   Firewire; or    -   Thunderbolt.

More generally though, this could be any current or future connector(wired or wireless) that allows the computer 10 to boot from theexternal device 20. In addition, the same interface 212 can furthermoreallow the user trusted device 20 for communicating with any externaldevice such as a beamer, a printer, or any other output device.

If necessary, the secure device 20 has a card reader to read usercredentials stored on a memory card, e.g., the non-secure memory or anysmart card. Suitable use can safely be made out of such data, e.g., usercredentials as stored on the card. In particular, a trustworthyconnection can be established between a user (or strictly speaking thedevice 20) and a third party, e.g., server 30, via the host 10 and usingsuch data. In a variant, the user credentials may be stored directly onthe secure device. Further usual interfaces (like control buttons anddisplay) may be provided to allow for interaction with the user. Mostnotably, such trustworthy display on the secure device 20 can be used toobtain user assertions about the environment s/he presently is in. Thisway, for example, but without limitation, a user can confirm requests bythe server 30 to ascertain that s/he is not in a public space such as anInternet café, when starting the computer 10.

2.3 General Aspects of Computerized Systems, Devices and ComputerProgram Products Suitable for Implementing Embodiments of the Invention

FIG. 1 represents a general computerized system 100, suited forimplementing method steps as involved in embodiments of the invention.

It will be appreciated that the methods described herein are largelynon-interactive, and automated by way of computerized systems, such asservers or embedded systems. In exemplary embodiments, the methodsdescribed herein can be implemented in a (partly) interactive ornon-interactive system. These methods can further be implemented atleast partly in software, firmware, hardware, or combinations thereof.In exemplary embodiments, the methods described herein are implementedat least partly as executable programs (e.g., being part of a bootloader) and is executed at least in part by a special or general-purposedigital computer 10, such as a personal computer, workstation,minicomputer, or mainframe computer. The most general system 100therefore includes general-purpose computer, e.g., a PC 10.

In exemplary embodiments, in terms of hardware architecture, as shown inFIG. 1, the computer 10 includes a processor 105, memory 110 coupled toa memory controller 115, and one or more input and/or output (I/O)devices (or peripherals) 20, 20 a, 145 that are communicatively coupledvia a local input/output controller 135. The input/output controller 135can be, but is not limited to, one or more buses or other wired orwireless connections, as is known in the art. The input/outputcontroller 135 may have additional elements, which are omitted forsimplicity, such as controllers, buffers (caches), drivers, repeaters,and receivers, to enable communications. Further, the local interfacemay include address, control, and/or data connections to enableappropriate communications among the aforementioned components. Asdescribed herein the I/O devices 20, 20 a, 145 may generally include anygeneralized cryptographic card or smart card known in the art. One ormore of these devices may be user trusted devices 20, 20 a, discussedabove.

The processor 105 is a hardware device for executing software,particularly, software that is stored in memory 110. The processor 105can be any custom made or commercially available processor, a centralprocessing unit (CPU), an auxiliary processor among several processorsassociated with the computer 10, a semiconductor based microprocessor(in the form of a microchip or chip set), a macroprocessor, or generallyany device for executing software instructions.

The main memory 110 includes volatile memory elements (e.g., randomaccess memory (RAM, such as DRAM, SRAM, SDRAM, etc.)) and possiblynonvolatile (persistent) memory elements (e.g., ROM, erasableprogrammable read only memory (EPROM), electronically erasableprogrammable read only memory (EEPROM), programmable read only memory(PROM), tape, compact disc read only memory (CD-ROM), disk, diskette,cartridge, cassette or the like, etc.). Moreover, the memory 110 mayincorporate or link to electronic, magnetic, optical, and/or other typesof storage media. Note that the memory 110 can have a distributedarchitecture, where various components are situated remote from oneanother, but can be accessed by the processor 105. Memory portions canbe allocated to specific purposes, e.g., to be mounted as a RAM disk, toreceive components 24, 24 a of a boot loader such as executable modules(including processor instruction modules), for subsequent execution atthe computer 10.

In operation, software/program code involved in embodiments of thisinvention, for instance software/program code to be transferred tomemory 110, may include one or more separate programs, each of whichcomprises a listing of executable instructions for implementing logicalfunctions. In the example of FIG. 1, memory 110 may be loaded withinstructions for enabling the computer 10 to start and complete bootingfrom the user trusted device 20.

Some of the software modules to be loaded in memory 110 may comprisevarious components 24 a, including application components and operatingsystem image components, and preferably hardware component drivers too.The memory 110 may thus be set in condition to execute a suitableoperating system (OS) 112. Notwithstanding, the novel methods discussedhere operate at least partly “before” any OS component be fully loadedat the host 10. At least some of these steps operate at another level,closer to hardware, whereby the normal behavior of the computer 10 isimpacted). Upon (and if) executing, the native OS 111 or the external OS112 shall essentially control the execution of application programs, andprovide scheduling, input-output control, file and data management,memory management, and communication control and related services.

At least part of the methods described herein may be in the form of asource program, executable program (object code), script, or any otherentity comprising a set of instructions to be performed. When a sourceprogram, then the program needs to be translated via a compiler,assembler, interpreter, or the like, which may or may not be includedwithin the memory(ies) of the device 20 and/or the host 10. Furthermore,the methods can be written as an object oriented programming language,which has classes of data and methods, or a procedure programminglanguage, which has routines, subroutines, and/or functions. In allcases, the novel methods discussed herein are designed so as to operateproperly in connection with the firmware, where needed, and with thedevice's CPU 11, as needed.

In exemplary embodiments, a conventional keyboard 150 and mouse 155 canbe coupled to the input/output controller 135. Other I/O devices 145 mayinclude, for example a printer, a scanner, microphone, and the like.Finally, the I/O devices 20, 20 a, 145 may further include devices thatcommunicate both inputs and outputs, for instance but not limited to, anetwork interface card (NIC) or modulator/demodulator (for accessingother files, devices, systems, or a network), a radio frequency (RF) orother transceiver, a telephonic interface, a bridge, a router, and thelike. As otherwise evoked in the previous section, the I/O devices 20,20 a, 145 may comprise any generalized cryptographic card or smart cardknown in the art. The system 100 can further include a displaycontroller 125 coupled to a display 130. In exemplary embodiments, thesystem 100 can further include a network interface 124 for coupling to anetwork 165. The network 165 can be an IP-based network forcommunication between the computer 10 and any external server, clientand the like via a broadband connection. The network 165 transmits andreceives data between the computer 10 and external systems, e.g., aserver 30. In exemplary embodiments, network 165 can be a managed IPnetwork administered by a service provider. The network 165 may beimplemented in a wireless fashion, e.g., using wireless protocols andtechnologies, such as WiFi, WiMax, etc. The network 165 can also be apacket-switched network such as a local area network, wide area network,metropolitan area network, Internet network, or other similar type ofnetwork environment. The network 165 may be a fixed wireless network, awireless local area network (LAN), a wireless wide area network (WAN) apersonal area network (PAN), a virtual private network (VPN), intranetor other suitable network system and includes equipment for receivingand transmitting signals.

If the computer 10 is a PC, workstation, intelligent device or the like,the software in the memory 110 may further include a basic input outputsystem (BIOS) or any similar initialization software. The BIOS is a setof essential software routines that initialize and test hardware atstartup. It is otherwise generally able to start an OS, and support thetransfer of data among the hardware devices. The BIOS is typicallystored in ROM so that the BIOS can be executed when the computer 10 isactivated.

For the purpose of implementing methods as described herein, the BIOScan be used (interacted with) notably to initiate the boot process andcomplete it, as well as, possibly, to initiate a communication over anetwork. More generally though, any suitable firmware or interface to afirmware (i.e., a combination of persistent memory and program code anddata stored therein, which operates “below” any OS 111, 112 in thesoftware stack), can be used to that aim. This typically is the BIOS.However, examples of suitable firmwares or interface thereto include aPreboot eXecution Environment (PXE) BIOS, the so-called ExtensibleFirmware Interface (EFI) BIOS or, still, the Unified Extensible FirmwareInterface (UEFI). The latter is a specification that defines a softwareinterface between the operating system and the platform firmware. UEFIis meant to replace the BIOS firmware interface, present in all IBMPC-compatible computers today. In practice, UEFI provides the same andeven more functionality than a traditional PC BIOS and can be used aswell. More generally, any initialization firmware operating below theoperating system in the software stack may potentially convene for thepurpose of implementing the present invention.

When the computer 10 is in operation, the processor 105 is configured toexecute software stored within the memory 110, to communicate data toand from the memory 110, and to generally control operations of thecomputer 10 pursuant to the software. The methods described herein, inwhole or in part, but typically the latter, are read by the processor105, possibly buffered within the processor 105, and then executed.

The portions of the methods described herein that can be implemented insoftware can be stored on any computer readable medium for use by or inconnection with any computer related system or method.

As will be appreciated by one skilled in the art, aspects of the presentinvention may be embodied as a system, method or computer programproduct. Accordingly, aspects of the present invention may take the formof an entirely hardware embodiment, an entirely firmware and/or softwareembodiment (firmware, resident software, micro-code, etc.) or anembodiment combining firmware/software and hardware aspects that may allgenerally be referred to herein as “modules”, “computerized methods”,“processes”, “components” or “schemes”, etc. Furthermore, aspects of thepresent invention may take the form of a computer program productembodied in one or more computer readable medium(s) having computerreadable program code embodied thereon.

Any combination of one or more computer readable medium(s) may beutilized. The computer readable medium may be a computer readable signalmedium or a computer readable storage medium. A computer readablestorage medium may be, for example, but not limited to, an electronic,magnetic, optical, electromagnetic, infrared, or semiconductor system,apparatus, or device, or any suitable combination of the foregoing. Morespecific examples (a non-exhaustive list) of the computer readablestorage medium would include the following: an electrical connectionhaving one or more wires, a portable computer diskette, a hard disk, arandom access memory (RAM), a read-only memory (ROM), an erasableprogrammable read-only memory (EPROM or Flash memory), an optical fiber,a portable compact disc read-only memory (CD-ROM), an optical storagedevice, a magnetic storage device, or any suitable combination of theforegoing. In the context of this document, a computer readable storagemedium may be any tangible medium that can contain, or store a programfor use by or in connection with an instruction execution system,apparatus, or device.

A computer readable signal medium may include a propagated data signalwith computer readable program code embodied therein, for example, inbaseband or as part of a carrier wave. Such a propagated signal may takeany of a variety of forms, including, but not limited to,electro-magnetic, optical, or any suitable combination thereof. Acomputer readable signal medium may be any computer readable medium thatis not a computer readable storage medium and that can communicate,propagate, or transport a program for use by or in connection with aninstruction execution system, apparatus, or device.

Program code embodied on a computer readable medium may be transmittedusing any appropriate medium, including but not limited to wireless,wireline, optical fiber cable, RF, etc., or any suitable combination ofthe foregoing.

Computer program code for carrying out operations for aspects of thepresent invention may be written in any combination of one or moreprogramming languages, including an object oriented programming languagesuch as Java, Smalltalk, C++ or the like and conventional proceduralprogramming languages, such as the “C” programming language or similarprogramming languages. The program code may execute entirely on theuser's computer, or partly on the user's computer (as a stand-alonesoftware package), or still partly on two or more of the following: theuser's computer 10, the user trusted device 20, and a remote computer30. The host computer and the server may be connected through any typeof network, including: local area network (LAN); wide area network(WAN); connection to an external computer (Internet, using an InternetService Provider).

Aspects of the present invention are described below with reference toflowchart illustrations and/or block diagrams of methods, apparatus(systems) and computer program products according to embodiments of theinvention. It will be understood that at least some of the blocks of theflowchart illustrations and/or block diagrams, and combinations ofblocks in the flowchart illustrations and/or block diagrams, can beimplemented by computer program instructions. These computer programinstructions may be provided to a processor of a general purposecomputer, special purpose computer, or other programmable dataprocessing apparatus to produce a machine, such that the instructions,which execute via the processor of the computer or other programmabledata processing apparatus, create means for implementing thefunctions/acts specified in the flowchart and/or block diagram block orblocks.

These computer program instructions may also be stored in a computerreadable medium that can direct a computer, other programmable dataprocessing apparatus, or other devices to function in a particularmanner, such that the instructions stored in the computer readablemedium produce an article of manufacture including instructions whichimplement the function/act specified in the flowchart and/or blockdiagram block or blocks.

The computer program instructions may also be loaded onto a computer,other programmable data processing apparatus, or other devices to causea series of operational steps to be performed on the computer, otherprogrammable apparatus or other devices to produce a computerimplemented process such that the instructions which execute on thecomputer or other programmable apparatus provide processes forimplementing the functions/acts specified in the flowchart and/or blockdiagram block or blocks.

The flowchart and block diagrams in the Figures illustrate thearchitecture, functionality, and operation of possible implementationsof systems, methods and computer program products according to variousembodiments of the present invention. In this regard, at least some ofthe blocks in the flowchart or block diagrams may represent a module,segment, or portion of code, which comprises one or more executableinstructions for implementing the specified logical function(s). Itshould also be noted that, in some alternative implementations, thefunctions noted in a block may occur out of the order noted in thefigures. For example, two blocks shown in succession may, in fact, beexecuted substantially concurrently, or the blocks may sometimes beexecuted in the reverse order, depending upon the functionalityinvolved. It will also be noted that each block of the block diagramsand/or flowchart illustration, and combinations of blocks in the blockdiagrams and/or flowchart illustration, can be implemented by specialpurpose hardware-based systems that perform the specified functions oracts, or combinations of special purpose hardware and computerinstructions.

2.4 Final Considerations

While the present invention has been described with reference to alimited number of embodiments, variants and the accompanying drawings,it will be understood by those skilled in the art that various changesmay be made and equivalents may be substituted without departing fromthe scope of the present invention. In particular, a feature(device-like or method-like) recited in a given embodiment, variant orshown in a drawing may be combined with or replace another feature inanother embodiment, variant or drawing, without departing from the scopeof the present invention. Various combinations of the features describedin respect of any of the above embodiments or variants may accordinglybe contemplated, that remain within the scope of the appended claims. Inaddition, many minor modifications may be made to adapt a particularsituation to the teachings of the present invention without departingfrom its scope. Therefore, it is intended that the present invention notbe limited to the particular embodiments disclosed, but that the presentinvention will include all embodiments falling within the scope of theappended claims. In addition, many variants not explicitly touched abovecan be contemplated. For example, the secure device could be poweredwith solar cells or any other suitable batteries, etc. As touchedearlier, the computerized methods described herein have been describedaccording to their main functions, e.g., some of which have beenassigned to various modules of the boot loader 24. However, embodimentsof the present invention could be equivalently described with the samefunctions recast over only one module, or more modules.

The invention claimed is:
 1. A computerized system, comprising: acomputer having an encrypted data storage system; and an external devicehaving a connection interface for enabling connection with the computerto securely boot the computer, wherein the computer comprises: one ormore partitions: and first encrypted data units that comprise partitiontable data of said encrypted data storage system, and wherein saidexternal device comprises a boot loader used to execute an externaloperating system (OS) that is not installed or not completely installedon the computer, and wherein the external device further comprisessecond encrypted data units that comprise reference partition table datafor said encrypted data storage system, wherein the external devicefurther comprises a processor and a memory coupled to the processor,said memory configuring said processor to perform a method comprising:upon connection of said external device to the computer, instructing toboot the computer from said boot loader; during or after booting of thecomputer; comparing a first hash value of the partition table data ofthe first encrypted data units and a second hash value of the referencepartition table data of the second encrypted data units; if the firstand second hash values match to each other, allowing the external OS toaccess, based on partitioning information stored on the external device,one or more data units of each of said one or more partitions on theencrypted data storage system; prior to instructing to boot the computerfrom said boot loader: setting up said one or more partitions of theencrypted data storage system using an encryption key and a decryptionkey; and storing, on said external device, said partitioning informationcomprising: at least one of locations of the one or more partitions thathave been set up using said encryption key and said decryption key; andan arrangement of the one or more partitions.
 2. The computerized systemof claim 1, wherein said second encrypted data units are available fromsaid encrypted data storage system or said external device.
 3. A usertrusted device for securely booting a computer, wherein the user trusteddevice has a connection interface for enabling connection with thecomputer, comprising: a boot loader configured for allowing to boot saidcomputer therefrom using an external operating system (OS) which is notinstalled or not completely installed on said computer; and secondencrypted data units that comprise reference partition table data for anencrypted data storage system of said computer, wherein said secondencrypted data units match first encrypted data units stored on saidencrypted data storage system of said computer, wherein the user trusteddevice further comprising a processor and a memory coupled to theprocessor, said memory configuring said processor to perform a methodcomprising: upon connection of said user trusted device to the computer,instructing to boot the computer from said boot loader; during or afterbooting of the computer; comparing a first hash value of the partitiontable data of the first encrypted data units and a second hash value ofthe reference partition table data of the second encrypted data units;responsive to determination of the second hash value matching to thefirst hash value, allowing the external OS to access, based onpartitioning information stored on the user trusted device, one or moredata units of each of one or more partitions on the encrypted datastorage system; prior to instructing to boot the computer from said bootloader: setting up said one or more partitions of the encrypted datastorage system using an encryption key and a decryption key; andstoring, on said user trusted device, said partitioning informationcomprising: at least one of locations of the one or more partitions thathave been set up using said encryption key and said decryption key; andan arrangement of the one or more partitions.
 4. A computer programproduct of controlling access of an operating system (OS) to firstencrypted data units of an encrypted data storage system of a computerto securely boot the computer, the computer program product comprising acomputer readable storage medium having computer-readable program codeembodied therewith, the computer-readable program code configured toimplement a method comprising: upon connection of an external device tothe computer, instructing to boot the computer from a boot loader of theexternal device used to execute an external OS that is not installed ornot completely installed on the computer; during or after booting of thecomputer: comparing a first hash value of the partition table data ofthe first encrypted data units with a second hash value of referencepartition table data of the second encrypted data units of the externaldevice; and if the first and second hash values match to each other,allowing the external OS to access, based on partitioning informationstored on the external device, one or more data units of each of one ormore partitions stored on the encrypted data storage system; prior toinstructing to boot the computer from said boot loader: setting up saidone or more partitions of the encrypted data storage system using anencryption key and a decryption key; and storing, on said externaldevice, said partitioning information comprising: at least one oflocations of the one or more partitions that have been set up using saidencryption key and said decryption key; and an arrangement of the one ormore partitions.
 5. The computer program product of claim 4, whereinsaid partitioning information further comprises an identifier (B1) of afirst block and/or an identifier (Bf) of a last block of each of the oneor more partitions.
 6. The computer program product of claim 5, whereinthe computer-readable program code is further configured to implement amethod comprising, prior to instructing to boot the computer from saidboot loader: reading, from the encrypted data storage system, said firstencrypted data units and storing the second encrypted data units, whichare a copy of said first encrypted data units, wherein reading saidfirst encrypted data units comprises reading one or more chunks of thepartition table data via an OS installed on the computer.
 7. Thecomputer program product of claim 6, wherein reading said firstencrypted data units is performed after connecting said external deviceto the computer and after instructing to boot the computer from saidboot loader, according to a function provided by said external device,by the boot loader itself or the external OS itself.
 8. The computerprogram product of claim 6, wherein, at the step of comparing the firsthash value of the partition table data of the first encrypted data unitswith the second hash value of the reference partition table data of thesecond encrypted data units, the second encrypted data units reside onsaid external device or on another external device having a connectioninterface for enabling connection with the computer.
 9. The computerprogram product of claim 6, wherein, at the step of comparing first hashvalue of the partition table data of the first encrypted data units withthe second hash value of the reference partition table data of thesecond encrypted data units, the second encrypted data units reside onthe encrypted data storage system.
 10. The computer program product ofclaim 4, wherein the computer-readable program code is furtherconfigured to implement a method comprising: if the first and secondhash values do not match, then: instructing the computer to bootindependently from said external OS to make available another decryptionkey for reading from said encrypted data storage system; and analyzingthe encrypted data storage system, wherein analyzing comprisesdecrypting the partition table data using the another decryption key.11. The computer program product of claim 10, wherein thecomputer-readable program code is further configured to implement amethod comprising, upon analyzing the encrypted data storage system: ifcontents of the first encrypted data units have changed, updating saidsecond encrypted data units to make them available from said computer orfrom said external device, by storing said second encrypted data unitson one of: said external device; or the encrypted data storage system.12. The computer program product of claim 10, wherein thecomputer-readable program code is further configured to implement amethod comprising, upon analyzing the encrypted data storage system: ifa location of at least one of the one or more partitions has changed,updating the partitioning information to include the location of said atleast one of the one or more partitions that has changed; and storing,on said external device, the updated partitioning information.
 13. Thecomputer program product of claim 10, wherein the computer-readableprogram code is further configured to implement a method comprising,upon analyzing the encrypted data storage system: if at least one of oneor more partitions was deleted, setting up a new partition of theencrypted data storage system.
 14. The computer program product of claim4, wherein said external device is a user trusted device, comprising; aconnection interface enabling connection with the computer; and apersistent memory, wherein the persistent memory stores: said bootloader for said external OS; said partitioning information; said secondencrypted data units; and software modules, which comprise one or moreof the following: application components; operating system imagecomponents for said external OS; and hardware component drivers for saidexternal OS.